3DEXPERIENCE | 3DSwym BIOVIA Pipeline Pilot
EN
|
Log in
Pipeline Pilot on Linux: Integration of the CACERTS file of the operating system

DB

Program

Pipeline Pilot Server (all supported versions)

 

Operating System

All supported Linux versions

 

Description

As described in this post, Pipeline Pilot requires an update of the trust store file 'cacerts' of its internal Java runtime environment if the Pipeline Pilot server runs with the recommended option 'SSL only'. In detail, you must add the certificates of those Root and Intermediate Certificate Authorities (CAs) to the cacerts file with which the Pipeline Pilot server certificate was signed.

This need to update the cacerts file will become all the more important in the upcoming Pipeline Pilot version 2026, as the 'SSL only' option will become the default setting with this version.

The Linux versions supported by Pipeline Pilot provide an internal Public Key Infrastructure (PKI), which can be used to centrally register CA certificates. In most cases, the company-internal CA certificates with which the Pipeline Pilot server certificates are signed are also registered in this PKI. This PKI then provides a system-wide cacerts file that can be used with Pipeline Pilot.

The following solution describes the steps to include the system-wide cacerts file in Pipeline Pilot. For the Linux platform, this solution can be used as an alternative to the direct update of the cacerts file described in the original post. Before applying this solution, confirm with your company IT that the internal CA certificates are registered to the PKI of the Pipeline Pilot server.

 

Solution

The following steps describe how you can replace the original Pipeline Pilot 'cacerts' file with the 'cacerts' file provided by the Linux operating system. For this, we assume that you installed Pipeline Pilot into the following directory:

	/opt/BIOVIA/PPS
  1. On the Pipeline Pilot server, open a command line, and navigate to the location of the trust store of the Java runtime of the Pipeline Pilot installation.
	cd /opt/BIOVIA/PPS/apps/scitegic/core/packages_linux64/java/jdk/lib/security
  1. Rename the existing cacerts file.
	mv cacerts cacerts.original
  1. Create a soft link to the cacerts file of the Linux operating system.
	ln -s /etc/pki/java/cacerts cacerts
  1. Restart the Pipeline Pilot service.
     

About 3DEXPERIENCE Platform Terms Of Use Privacy Policy Cookies